I had a look into sshd_config and couldn't see any mechanism for confining the user to a specified folder or area.
Maybe openbsd does not have any way of doing this? It may be of the opinion that users should be allowed to look around directory structures and the admin must implement the necessary precautions to stop any tinkering by users?
It would be great to stop users seeing the contents of system folders etc. This may give an intruder a slightly harder time of breaking out of the account?
May knowledge is vary little on this subject but I'm surprised a facility does not exist.
regards
Pico
|